This privacy policy explains how personal data is collected and used when you enquire about our services, request a demonstration or purchase our services or once a client, utilise our services.

HR-inform is a service delivered by Croner-I Ltd (“Croner-i”).  Croner-i is the Data Controller for any personal data that you supply to us in connection with the provision of our services or for the purposes to intending to acquire our services.

Our address is:

Croner-I Ltd

240 Blackfriars Rd



Telephone 0800 231 5199


The Group has a Data Protection Officer, Andrew Martin, who can be contacted at

What personal data we collect

The personal data collected depends on how you use our website. You can browse the site, you can fill in a form on the website to request a demonstration or to purchase our service or to contact us for further information.    

What we do with your personal data

When you visit our website, a record of your visit is made. This data includes your device’s IP address. That data is used completely anonymously, in order to determine the number of people who visit our website and the most frequently used sections of the site. This enables us to continually update and refine the site. If you use any forms on the website to send an email to us, a record will also be made of your email address and your telephone number.

The following table sets out how we handle your personal data and our legal basis for doing so under GDPR and the Data Protection Act 2018.

What we do

Our legal basis under GDPR

Use the personal data that you provide on our web forms and questionnaires

Article 6(1)(b) - when you provide us with your personal data, for instance to request a demo or to purchase our service.  The processing is necessary for the performance of a contract to which you are a party, or in order to take steps, at your request, prior to entering into a contract


Provide our core services of health and safety, employment law advice, employment documentation and legal updates

Article 6(1)(b) - this is necessary for the performance of a contract with you, our data subject

Contact you regarding the services we provide

Article 6(1)(f) - we need to contact you for our legitimate interests so that we can gather more information for the provision of our services, or to deliver those services most effectively

Contact you regarding services closely aligned to those for which you have subscribed

Article 6(1)(f) - we need to contact you for our legitimate interests so that we can gather more information for the provision of our services, or to deliver those services most effectively

Retain your data under our data retention policy after your contract has expired

Article 6(1)(f) - we need to retain your personal data for only as long as necessary under the law or for our legitimate interest for the purposes of the establishment, exercise or defence of legal claims.


The following table sets out the categories of personal data that we obtain.


Personal Data


Name, email address, phone number, bank details website, identification number, location data, online identifier - these are classed as personal data

This data is provided by you on our web forms either to obtain a demo from us or to subscribe to our service.  Limited data will be taken when you request a demo.



We may collect, hold, use and disclose the information collected to compile statistical data and to; maintain our database; develop/improve our website; respond to any email enquiries; notify you of any upcoming marketing, training or other events that you have opted in to; provide you with services contracted for; manage quality control; manage systems administration; attend to compliance issues; or provide you or your organisation with advice.   This may include compiling and sharing statistical and membership data with the CIPD.

We will not use or disclose your personal information for any other purpose which is not for the above purposes without your consent, unless otherwise authorised, required or permitted under the laws of England and Wales. Croner-i does not sell your data to third parties.  However, your data may be shared with CIPD for the purposes of legitimate interest.

If you no longer wish to receive information about our services, please send an email to our Group Data Protection and Compliance Officer at advising that you do not wish to receive further information.

Will we disclose your data?

Personal data will only be disclosed on a confidential basis to external service providers so that they can provide services such as financial or administrative services in connection with the operation of our business; and to any person (where necessary) in connection with their services, such as law enforcement, regulatory authorities, partners or advisors; or the CIPD.

Where required, the handling of these operations is governed by a data processing contract between us and our external service provider, ensuring a commitment to the principals of the GDPR and the Data Protection Act 2018. We ensure external service providers are only authorised to use personal data for the limited purposes specified in our agreement with them.

How long we keep your personal data

Personal data from our data subjects is retained in line with our data retention policy. Croner-I keeps most data for 7 years, which covers the 6 years by law in which we have to keep certain information for a minimum of 6 years plus the current year. Personal data that is no longer necessary to be kept under Croner-I’s data retention policy will be deleted. Under Croner’s data retention policy, there are certain exemptions in relation to financial data and health data. A copy of Croner-i's data retention policy can be made available upon request.

Your Rights

You have the following rights in relation to personal data held on you by Croner-i:

  • The right to be informed about how personal data is used - (this notice)
  • The right to access a copy of personal data that Croner-i holds about you
  • The right to rectification of any errors in personal data held by Croner
  • The right to erasure of any personal data
  • The right to restrict processing
  • The right to data portability
  • The right to object
  • Rights in relation to automated decision making including profiling

If you wish to learn more about these rights and how they operate, please look at the ICO’s website

Croner does not operate any automated decision making systems.

You have a right to request a copy of the personal data that we hold about you. If you would like a copy of some or all of your personal data please email or write to our Group Data Protection and Compliance Officer at Croner-i Ltd, 240 Blackfriars Rd, London, SE1 8NW.  Proof of your identity may be required for security purposes.

If you are unhappy with the response that you receive from us when you exercise your GDPR rights or Data Protection Act 2018 rights, you have the right to lodge a complaint to the ICO. More guidance about raising a complaint with us is available on the ICO’s website and for raising a complaint with the ICO, more information is available on


This website uses Google Analytics, a web analytics service provided by Google, Inc. Google Analytics sets a cookie in order to evaluate your use of this website and compile reports for us on activity on the website. Google stores the information collected by the cookie on servers in the United States and the transfer of the data to servers in the USA is governed by the EU-US Privacy Shield framework. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above. More information about Google’s compliance with GDPR can be obtained from their website

Cookies are text files placed on your computer to collect standard internet log information and visitor behaviour information. This information is used to track visitor use of the website and to compile statistical reports on website activity. For further information visit

You can set your browser not to accept cookies and the above websites tell you how to remove cookies from your browser. However, in a few cases some of our website features may not function as a result.

Other websites

Our website may contain links to other sites. This privacy policy only applies to this website so when you link to other websites you should read their own privacy policy.

How to contact us

Please review the website regularly as this statement may change from time to time.  If you have any questions about our privacy policy or information we hold about you please contact:

Group Data Protection and Compliance Officer

Telephone 0844 892 2779


December 2018